摘要
针对云应用场景中身份认证和数据持有性证明的双重需求,提出一种支持身份认证的数据持有性证明方案。基于数据标签签名和随机数复用,新方案通过3次交互即可实现用户对云持有数据的完整性验证、用户与云服务器之间的双向身份认证以及会话密钥协商与确认。与使用认证密钥协商和数据持有性证明的组合方案相比,新方案具有较少的运算量和交互轮次以及可证明的安全性。在随机预言机模型下,基于计算性Diffie-Hellman问题假设,给出方案的安全性证明。
To satisfy the requirements of identity authentication and data possession proven in the cloud application sce- narios, a provable data possession scheme with authentication was proposed. Based on data tag signature and randomness reusing, the proposed scheme could accomplish several issues with three interactions, including the possession proof of cloud data, the mutual authentication between user and cloud computing server, the session key agreement and confirma- tion. Compared to the simple combination of authentication key agreement and provable data possession schemes, the proposed scheme has less computation and interactions, and better provable securities. In the random oracle model, the security proof of the proposed scheme is given under the computational Diffie-Hellman assumption.
出处
《通信学报》
EI
CSCD
北大核心
2016年第10期117-127,共11页
Journal on Communications
基金
国家自然科学面上基金资助项目(No.61170251)
国家高技术研究发展计划("863"计划)基金资助项目(No.2015AA016007)
国家自然科学基金-广东联合基金资助项目(No.U1401251)~~
关键词
认证
数据持有
云计算
可证明安全
随机预言机
authentication, data possession, cloud computing, provable security, random oracle
